Alpine: multiple cacti packages: security update to 1.2.28-r0

high Tenable Cloud Security Plugin ID 425974

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- Cacti is an open source performance and fault management framework. The `fileurl` parameter is not
properly sanitized when saving external links in `links.php` . Morever, the said fileurl is placed in some
html code which is passed to the `print` function in `link.php` and `index.php`, finally leading to stored
XSS. Users with the privilege to create external links can manipulate the `fileurl` parameter in the http
post request while creating external links to perform stored XSS attacks. The vulnerability known as XSS
(Cross-Site Scripting) occurs when an application allows untrusted user input to be displayed on a web
page without proper validation or escaping. This issue has been addressed in release version 1.2.28. All
users are advised to upgrade. There are no known workarounds for this issue. (CVE-2024-43362)

- Cacti is an open source performance and fault management framework. An admin user can create a device with
a malicious hostname containing php code and repeat the installation process (completing only step 5 of
the installation process is enough, no need to complete the steps before or after it) to use a php file as
the cacti log file. After having the malicious hostname end up in the logs (log poisoning), one can simply
go to the log file url to execute commands to achieve RCE. This issue has been addressed in version 1.2.28
and all users are advised to upgrade. There are no known workarounds for this vulnerability.
(CVE-2024-43363)

- Cacti is an open source performance and fault management framework. The `title` parameter is not properly
sanitized when saving external links in links.php . Morever, the said title parameter is stored in the
database and reflected back to user in index.php, finally leading to stored XSS. Users with the privilege
to create external links can manipulate the `title` parameter in the http post request while creating
external links to perform stored XSS attacks. The vulnerability known as XSS (Cross-Site Scripting) occurs
when an application allows untrusted user input to be displayed on a web page without proper validation or
escaping. This issue has been addressed in release version 1.2.28. All users are advised to upgrade. There
are no known workarounds for this vulnerability. (CVE-2024-43364)

- Cacti is an open source performance and fault management framework. The`consolenewsection` parameter is
not properly sanitized when saving external links in links.php . Morever, the said consolenewsection
parameter is stored in the database and reflected back to user in `index.php`, finally leading to stored
XSS. Users with the privilege to create external links can manipulate the “consolenewsection” parameter in
the http post request while creating external links to perform stored XSS attacks. The vulnerability known
as XSS (Cross-Site Scripting) occurs when an application allows untrusted user input to be displayed on a
web page without proper validation or escaping. This issue has been addressed in release version 1.2.28.
All users are advised to upgrade. There are no known workarounds for this vulnerability. (CVE-2024-43365)

See Also

https://security.alpinelinux.org/vuln/CVE-2024-43362

https://security.alpinelinux.org/vuln/CVE-2024-43363

https://security.alpinelinux.org/vuln/CVE-2024-43364

https://security.alpinelinux.org/vuln/CVE-2024-43365

Plugin Details

Severity: High

ID: 425974

Version: Revision 1.6

Type: Local

Published: 5/16/2025

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 4.9

Percentile: 57.62

CVSS v2

Risk Factor: High

Base Score: 8.3

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C

CVSS Score Source: CVE-2024-43363

CVSS v3

Risk Factor: High

Base Score: 8.2

Temporal Score: 7.4

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

CVSS Score Source: CVE-2024-43365

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 10/7/2024

Reference Information

CVE: CVE-2024-43362, CVE-2024-43363, CVE-2024-43364, CVE-2024-43365